F-SECURE CLIENT SECURITY 8.00 Administrator's Manual page 249

6. Wait for a report from the Security Labs, and follow the provided
disinfection instructions carefully.
It is advised to backup any important data from the infected computer
before disinfecting it. This backup should not be taken using the
network; use external backup devices instead. Back up only data
files, not executable files. If there is a need to restore the backup
later, all restored files should be checked for infection.
7. When provided with a disinfection solution, test it on one computer
first. If it works, it can be applied to all infected computers.
Scan the cleaned computers with F-Secure Client Security and the
latest virus definitions updates to ensure that no infected files are left.
8. Re-enable the network only after every single infected computer is
cleaned.
If the malware contained backdoors or data stealing capabilities, it is
strongly recommended to change passwords and logins for all
network resources.
9. Inform the employees about the outbreak and warn them against
running unknown attachments and visiting suspicious Internet sites.
Check the security settings of installed software on workstations.
Make sure that e-mail scanners and firewalls function correctly on
servers. F-Secure Client Security should receive updates
automatically, however it is recommended to periodically check that
these automatic updates are working correctly.
10. Warn your partners about the outbreak and recommend them to scan
their computers with F-Secure Client Security and the latest virus
definitions updates to make sure that an infection did not leave your
network.
CHAPTER 10 249